Nevertheless, the agency went on to describe it as a “targeted” (i.e. at Iran) attack. “Despite its simplicity in design, the malware is efficient and can wipe disk partitions and user profile directories without being recognized by anti-virus software,” reads Maher’s report.

A number of malware components are then listed which offer little clue as to its origins.

Sophisticated or not, malware attacks that appear on Iranian radar for long enough to be reported are rarely a coincidence.